Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.SAP_NETWEAVER_AS_ABAP_3268959.NASLHistorySep 15, 2023 - 12:00 a.m.
SAP NetWeaver AS ABAP Multiple Vulnerabilities (3268959)
2023-09-1500:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
sap netweaver
abap
vulnerabilities
unauthenticated attacker
malicious link
sensitive information
redirect
phishing attack
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
35.8%
Multiple vulnerabilities may be present in SAP NetWeaver Application Server ABAP, including the following:
-
An unauthenticated attacker to craft a malicious link, which when clicked by an unsuspecting user, can be used to read or modify some sensitive information. (CVE-2023-23859)
-
An unauthenticated attacker to craft a link, which when clicked by an unsuspecting user can be used to redirect a user to a malicious site which could read or modify some sensitive information or expose the victim to a phishing attack. (CVE-2023-23860)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(181467);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/09/18");
script_cve_id("CVE-2023-23859", "CVE-2023-23860");
script_name(english:"SAP NetWeaver AS ABAP Multiple Vulnerabilities (3268959)");
script_set_attribute(attribute:"synopsis", value:
"The remote SAP NetWeaver ABAP server may be affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"Multiple vulnerabilities may be present in SAP NetWeaver Application Server ABAP, including the following:
- An unauthenticated attacker to craft a malicious link, which when clicked by an unsuspecting user, can be
used to read or modify some sensitive information. (CVE-2023-23859)
- An unauthenticated attacker to craft a link, which when clicked by an unsuspecting user can be used to
redirect a user to a malicious site which could read or modify some sensitive information or expose the
victim to a phishing attack. (CVE-2023-23860)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
# https://blogs.sap.com/2023/09/12/sap-security-patch-day-september-2023/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ce501b65");
script_set_attribute(attribute:"see_also", value:"https://me.sap.com/notes/3268959");
script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the vendor advisory.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-23860");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/02/14");
script_set_attribute(attribute:"patch_publication_date", value:"2023/02/14");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/09/15");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/a:sap:netweaver_application_server");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Web Servers");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("sap_netweaver_as_web_detect.nbin");
script_require_keys("installed_sw/SAP Netweaver Application Server (AS)", "Settings/ParanoidReport");
script_require_ports("Services/www", 80, 443, 8000, 50000);
exit(0);
}
include('vcf_extras_sap.inc');
var app_info = vcf::sap_netweaver_as::get_app_info();
if (report_paranoia < 2)
audit(AUDIT_PARANOID);
var fix = 'See vendor advisory';
var constraints = [
{'equal' : '740', 'fixed_display' : fix },
{'equal' : '750', 'fixed_display' : fix },
{'equal' : '751', 'fixed_display' : fix },
{'equal' : '752', 'fixed_display' : fix },
{'equal' : '753', 'fixed_display' : fix },
{'equal' : '754', 'fixed_display' : fix },
{'equal' : '755', 'fixed_display' : fix },
{'equal' : '756', 'fixed_display' : fix },
{'equal' : '757', 'fixed_display' : fix },
{'equal' : '789', 'fixed_display' : fix },
{'equal' : '790', 'fixed_display' : fix }
];
vcf::sap_netweaver_as::check_version_and_report(
app_info:app_info,
constraints:constraints,
severity:SECURITY_WARNING,
abap:TRUE
);Related
cve
cve
CVE-2023-23860
2023-02-14 04:15:12
CVE-2023-23859
2023-02-14 04:15:12
prion
prion
Information disclosure
2023-02-14 04:15:00
Information disclosure
2023-02-14 04:15:00
cnvd
cnvd
SAP NetWeaver AS Cross-Site Scripting Vulnerability (CNVD-2023-40170)
2023-03-01 00:00:00
nvd
nvd
CVE-2023-23859
2023-02-14 04:15:12
CVE-2023-23860
2023-02-14 04:15:12
cvelist
cvelist
CVE-2023-23860
2023-02-14 03:16:18
CVE-2023-23859
2023-02-14 03:15:54
nessus
nessus
SAP NetWeaver AS ABAP Multiple Vulnerabilities (Feb 2023)
2023-02-15 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
35.8%
Related for SAP_NETWEAVER_AS_ABAP_3268959.NASL